Manuals / WatchGuard Technologies / Cell Phone / Cell Phone

WatchGuard Technologies V10.0 manual Defining friendly networks, Creating firewall rules

Models: V10.0

1 38

Download 38 pages 17.57 Kb

Page 33

Securing Your Computer with the Mobile VPN Firewall

3Define friendly networks and create firewall rules as described in the subsequent sections.

Defining friendly networks

Use the Friendly Networks tab to define specific known networks for which you want to generate a firewall rule set. For example, if you want to use the Mobile VPN client on a local network where you do not want your computer firewalled from other computers, you can add the network address of that LAN as a friendly network to differentiate the firewall rules for that LAN from the firewall rules you cre- ate for connections to the Internet and to remote VPN networks.

1On the Firewall Settings dialog box, click the Friendly Networks tab.

2Click New to add a new friendly network.

The Automatic Friendly Network detection feature does not work in this release of the Mobile VPN with IPSec client software.

Creating firewall rules

Use the Firewall Rules tab to create exceptions to the firewall mode you set when you enabled the fire- wall. For example, if you selected Basic Locked Settings, then the rules you create here allow traffic. If you selected Basic Open Settings, then the rules you create here deny traffic. Firewall rules can include multiple port numbers from a single protocol.

The check boxes below View Settings allow you to show or hide categories of firewall rules.

Administrator Guide

31

Image 33

WatchGuard Technologies V10.0 manual Defining friendly networks, Creating firewall rules

Contents

WatchGuardMobile VPN with IPSec Administrator Guide Address Before You Begin About Mobile VPN Client Configuration FilesEnabling Mobile VPN for a Firebox User Account Select the Enable Muvpn for this account check boxGet the user’s .wgx file Configuring Global Mobile VPN Client SettingsDistributing the Software and Profiles Distributing the Software and ProfilesEnd-user profile Distributing the Software and Profiles Mobile User VPN Before You Begin Configuring the Firebox for Mobile VPN Select a user authentication server Configuring the Firebox for Mobile VPN Configuring the external authentication server Adding Users to a Firebox Mobile VPN Group Modifying an Existing Mobile VPN ProfileConfirm Use a certificate Phase2 Settings Defining advanced Phase 1 settings Allowing Internet access through Mobile VPN tunnels Configuring Wins and DNS ServersOn the Mobile User VPN tab, click Advanced Locking Down an End-User ProfileConfiguring Policies to Filter Mobile VPN Traffic Add individual policiesSeeing details on an Mobile VPN policy Using the Any Policy Re-creating End-User ProfilesSaving the Profile to a Firebox Making outbound IPSec connections from behind a Firebox Additional Mobile VPN TopicsAdding feature keys Global VPN settingsTerminating IPSec connections Seeing the number of Mobile VPN licensesMobile VPN Client Installation and Connection Installing the Mobile VPN with IPSec Client Select Configuration Profile Import Importing the end-user profileWindow AutoStart No Autostart Connecting the Mobile VPN Client Uninstalling the Mobile VPN clientSelecting a certificate and entering the PIN Disconnecting the Mobile VPN client Controlling connection behaviorStart All Programs WatchGuard Mobile VPN Mobile VPN Monitor Mobile User VPN client icon Seeing Mobile VPN Log MessagesEnabling the link firewall Securing Your Computer with the Mobile VPN FirewallConfiguration Firewall Settings About the desktop firewallEnabling the desktop firewall Creating firewall rules Defining friendly networksGeneral tab Local tab Remote tab